VideoLAN @videolan App Stores were a mistake. Currently, we cannot update VLC on Windows Store, and we cannot update VLC on Android Play Store, without reducing security or dropping a lot of users… For now, iOS App Store still allows us to ship for iOS9, but until when?
Can someone break down the thinking behind this?
It’s explained here: https://social.treehouse.systems/@Aissen/112139649840297169
Reminder that VLC is on F-Droid
They’ve not updated it there either though. It seems to be less of a case of can’t update Android and more of a case of won’t update Android
What exactly is the issue preventing them from updating the Android version?
Also, if that’s the case, it sounds like “App stores were a mistake” is a bit misleading, since the particular app store isnt the problem.
Basically, modern app stores have changed how they work and now require the signing keys, VLC feel this is a bad thing and refuse to update. Banks are okay with it, but VLC feel more strongly than banks.
In addition to the private key thing, the Play Store is requiring them to drop support for APIs older than API 30 unless they provide the key.
Which in effect means VLC can no longer be updated on AndroidTVs running Android 11 or earlier.
Which is millions of customers, according to VLC
From their Twitter:
If you wonder why we can’t update the VLC on Android version, it’s because Google refuses to let us update:
- either we give them our private signing keys,
- or we drop support for Android TV before API-30, and all our users on TV API<30 can’t get fixes.
It’s not much, just dozens of millions of people use Android TV before Android-11…
Maybe we should tell users to buy new TVs? #electronicWaste
I can’t speak to why they’re not updating on FDroid but seeing as how it’s much more difficult to get people to use FDroid on Android TV, I don’t think it will help them with that issue anyway.
Google requiring their private signing key is insane, and goes completely against the concept of private/public keys.
Why is Google asking for this?
VLC don’t update on Fdroid, Fdroid compile all the apps on their repo (the one that comes with the app). Fdroid do some checks on the updated app before they compile it, so it’s always a little behind the main release.
Edit: it could also be that VLC haven’t yet released the updated app (and in particular its source), so Fdroid have nothing to work with.
I just feel it doesn’t make sense to moan unless you have releases you’re unable to deploy.
Dear VLC, in your download section there is the F-Droid app store option which I consider a good thing. p.s. Why are you still posting on Twitter ??? On your website I see two buttons Facebook and Twitter. Time for a change ?
By the way, archive.is and archive.ph are Tor unfriendly. Another link : https://news.ycombinator.com/item?id=39798565
The guy upset about his 14 year old iPad not still receiving support is hilarious!
Ok yeah it’s kind of funny but if you think about it for a second that ipad is perfectly functional. If apple doesn’t want to support it because it doesn’t make them money, then why can’t the community? Why does apple get to decide what is e-trash and what isn’t?
The laptop I bought second hand in 2014 is still very much functionnal, and in fact it still runs. I’ll concede that it doesn’t run well, as it was already unpowered back then, but it runs some flavors of Linux oriented towards low-power devices, because people made them to do specifically this. If I had bought a second had ipad instead, it would be in a landfill by now. It didn’t even take any special actions on toshiba’s part to make it behave like this, they just made a laptop that was up to the standards of every other laptop at the time. What I’m getting at is that this isn’t a new idea, we know how to take care of our devices for longer already, were it not for the apples and googles telling us what we can’t and can do on the device we own.
I thought MissTake’s response was really good and covers pretty much everything
“Thanks to Apple”?
The original iPad was a 32 bit A8 single core CPU that topped out as 1Ghz and with 256MB Ram and used the ARMv7 instruction set.
How do you expect a modern day OS with requirements to deal with real world sensors, and user requirements that didn’t exist back then, to run against that?
The latest iPads have 2GB Ram, are 64 bit, run multiple cores and have embedded motion coprocessors and neural capabilities running a much later instruction set.
Let’s be reasonable here - that device is now about to be 14 years old.
And, if “the hardware works beautifully” how is it “pretty much a brick”?
iPads are not the same as laptops or desktops. Sure, you can still run some Linux distros on older 32 bit hardware, but everyone who does knows of the limitations of doing so and realize that they lack the horsepower of modern day computers and use them accordingly.
Its hilarious that apple is creating a bunch of ewaste for no good reaaon?
My mom’s macbook is 14 years old and perfectly functional. So why doesnt it work (well) anymore?
Apple doesnt provide updated root certificates anymore, so all https sitesare borked.
Name a company that gives security updates to 15 year old tablets.
I wish they did, but this is hardly just an Apple problem. The only reason I bring this up is because people very quickly dunk on Apple without thinking about the fact that we need more access to all of our hardware in order to increase the longevity for those who want to.
Frankly I find iPads work longer on average than most other tablets. Purely anecdotal though.
The other elephant in the room is that most people don’t want to use 15 yr old tablets. I know I don’t want to edit video on 15 yr old desktops, even though they were perfectly capable of editing 15 years ago. But not current videos. Just like 15 year old tablets will not be able to readily stream or display a lot of modern content correctly.
By the way, archive.is and archive.ph are Tor unfriendly.
Not just Tor, they poison DNS queries from Cloudfare and Quad9, basically any DNS that doesn’t give them sufficient location information about the end user.
With Play App Signing, Google manages and protects your app’s signing key for you and uses it to sign optimized, distribution APKs that are generated from your app bundles
You can use google’s play app signing. It’s not mandatory.
That is not better, it still means that the app is signed with a non private key, which goes against the very concept of the private/public key concept
Thats what they complain about. They can use it. They dont have to. Yes its bad but they mix up a lot in one post.
An unacceptable option is not an option. This is like saying somebody has access to multiple Internet providers when one ISP is so slow as to be nearly unusable, but it technically exists and you can technically pay for it. That’s not really what we mean by “choice.”
Your response is so typical and frustrating to be honest. It’s flippant nonsense where you know what we are talking about but you don’t want to agree so you hide behind lazy responses like the one you wrote.
Why do Google need the private key? I can only see it being used to modify apps without notice.
